Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

10

Fix Recommendation

Disable IP directed broadcasts on all layer 3 interfaces.

Check Contents

IP directed broadcast is disabled by default in IOS version 12.0 and higher so the command "no ip directed-broadcast" will not be displayed in the running configuration--verify that the running configuration does not contain the command "ip directed-broadcast". For versions prior to 12.0 ensure the command "no ip directed-broadcast" is displayed in the running configuration.

If IP directed broadcasts are enabled on layer 3 interfaces, this is a finding.

Vulnerability Number

V-3083

Documentable

False

Rule Version

NET0790

Severity Override Guidance

IP directed broadcast is disabled by default in IOS version 12.0 and higher so the command "no ip directed-broadcast" will not be displayed in the running configuration--verify that the running configuration does not contain the command "ip directed-broadcast". For versions prior to 12.0 ensure the command "no ip directed-broadcast" is displayed in the running configuration.

If IP directed broadcasts are enabled on layer 3 interfaces, this is a finding.